Security/Fusion/Dashboard: Difference between revisions

Revision as of 11:04, 26 July 2018

Bug Tracking

Fingerprinting MVP bugs are tracked under the meta bug:
bug 1329996 - [META] Support anti-fingerprinting protection

Whiteboard Definition

[fingerprinting]: Fingerprinting bugs
[fp-breakage]: Breakage issues caused by fingerprinting resistance
[fp-triaged]: Already triaged
[fp-backlog]: Backlog bugs

Fingerprinting Bugs

Open P1 Bugs (We are actively working on them)

No results.

0 Total; 0 Open (0%); 0 Resolved (0%); 0 Verified (0%);

Open P2 Bugs (Important. We will work on them ASAP)

Full Query

ID	Summary	Priority	Status	Whiteboard
1041818	take steps to mitigate canvas fingerprinting	P2	NEW	[fingerprinting][tor][fp-triaged]
1329996	[META] Tor Uplift: Fingerprinting Resistance	P2	NEW	[tor][fingerprinting][domsecurity-meta][fp-triaged]
1397996	scrollbar thickness reveals platform	P2	NEW	[tor][fingerprinting][fp-triaged][tor 22137]
1414311	New window size is different than expected after changing screen dpi (with privacy.resistFingerprinting pref enabled)	P2	NEW	[fingerprinting][fp-triaged][tor 30970]
1485249	WebGL extensions should be disabled when private.resistFingerprinting is enabled	P2	NEW	[tor 6370][gfx-noted][fingerprinting][fp-triaged]
1502831	Use software rendering to mitigate canvas fingerprinting while privacy.resistFingerprinting=True	P2	REOPENED	[fingerprinting][fp-triaged]
1522517	[meta] Unify software rendering settings while privacy.resistFingerprinting=True	P2	NEW	[fingerprinting][fp-triaged]
1522528	Disable anialiasing while privacy.resistFingerprinting=True	P2	NEW	[fingerprinting][fp-triaged]

8 Total; 8 Open (100%); 0 Resolved (0%); 0 Verified (0%);

P3-P5 Bugs (Backlog)

Full Query

ID	Summary	Priority	Status	Assigned to	Whiteboard
1445310	Clamp and Jitter Timestamps in CSS Animations	P3	NEW	Brian Birtles (:birtles)	[fingerprinting][fp-triaged]
1422862	Make OffscreenCanvas respect Canvas Permission Prompt so you don't always get a placeholder	P3	ASSIGNED	Fatih Kilic [:fkilic]	[fingerprinting][gfx-noted][fp-triaged][fpp:m8]
1152448	"Forget About This Site" does not forget site's enumerateDevices Ids	P3	ASSIGNED	Jan-Ivar Bruaroey [:jib] (needinfo? me)	[fingerprinting][fp-triaged]
1439784	Fix the KeyboardEvent mochitests	P3	NEW		[tor][fingerprinting][fp-triaged]
1447011	Permit setting HSTS entries only on the host name or the eTLD+1	P3	NEW		[fingerprinting][psm-backlog][fp-triaged]
1356383	Add Telemetry for Gamepad API	P3	REOPENED		[fingerprinting][fp-triaged]
1330882	When privacy.resistFingerprinting = true, set new windows to rounded dimensions [tor 19459]	P3	REOPENED		[fingerprinting][tor][fp-triaged]
1233846	WebSpeech Synthesis API mustn't allow fingerprinting	P3	NEW		[fingerprinting][tor 10283][fp-triaged]
1315203	XSHM: Cross Site History Manipulation (information leakage)	P3	NEW		[fingerprinting][fp-triaged]
1325874	Consider seperating page content history for userContextId	P3	NEW		[fingerprinting][fp-triaged][domsecurity-backlog2][userContextId]
1336208	Bundle and whitelist fonts when privacy.resistFingerprinting = true	P3	NEW		[fingerprinting][gfx-noted][fp-triaged]
1356381	[META] Add Telemetry and Perform Experiments to measure breakage/impact of Anti-Fingerprinting Patches	P3	NEW		[domsecurity-meta] [fingerprinting][fp-triaged]
1940296	Vsync is enabled on Wayland when RFP is on and leaks the monitor refresh rate	P3	NEW		[fingerprinting]
1372288	[meta] WebExtensions can be used as user fingerprint	P3	NEW		[fingerprinting][fp-triaged]
1383656	Tweak and analyze the value and find out an appropriate way to generate the padding size for opaque response	P3	NEW		[fingerprinting] [fxprivacy] [fp-triaged]
1394448	Cannot install Addon with privacy.resistFingerprinting==true	P3	NEW		[fp-triaged][domsecurity-backlog1][fingerprinting]
1401493	Perform Fingerprint Comparison of Tor Browser and Firefox	P3	NEW		[tor][fingerprinting][fp-triaged]
1772039	Enabling privacy.resistFingerprinting causes the zoom cameras/screens to be a black screen.	P3	NEW		[fingerprinting][domsecurity-backlog3]
1405971	Webextension UUID leak to servers via Fetch request headers	P3	NEW		[fingerprinting][fp-triaged]
1409974	KeyboardEvent.location could be used as a user behavior fingerprinting vector.	P3	NEW		[fingerprinting][fp-triaged]
1412814	privacy.resistFingerprinting should do something smarter about system metric media queries.	P3	NEW		[gfx-noted][fingerprinting][fp-triaged]
1722181	Math Fingerprinting via Polyfills	P3	NEW		[fingerprinting]
1420653	DeviceId is persisted even if cookies are disabled, allowing persistent fingerprint	P3	NEW		[fingerprinting][fp-triaged]
1420809	Permissions that are perpetually denied should not return Reject immediately	P3	NEW		[fingerprinting][fp-triaged]
1422482	OS username disclosure using downloads manager	P3	NEW		[fingerprinting][tor]
1422890	Add additional Canvas Fingerprinting Tests	P3	NEW		[fingerprinting][gfx-noted][fp-triaged]
1717671	Avoid the use of a persistent UUID in the public base URL of extensions	P3	NEW		[mv3-future][sp3][fingerprinting]
1636005	Default submit button label length allows browser language fingerprinting	P3	NEW		[reporter-external] [client-bounty-form] [verif?][fingerprinting][domsecurity-backlog1]
1429097	Pause execution when Canvas Permission Prompt is displayed	P3	NEW		[fingerprinting][gfx-noted][fp-triaged]
1429519	Add a canvas-imagedata permission	P3	NEW		[fingerprinting][gfx-noted][fp-triaged]
1429648	Add tests that handle timer rounding	P3	NEW		[fingerprinting][fp-triaged]
1429865	Allow managing canvas permissions in about:preferences when resistFingerprinting is on	P3	NEW		[gfx-noted][fingerprinting][fp-triaged]
1581453	Resist Fingerprinting retriggers Bug 402089 - nsDOMUIEvent should cache coordinates when DuplicatePrivateData is called	P3	NEW		[fingerprinting]
1562290	Need a mechanism to limit gyroscope data leakage for fingerprinting	P3	NEW		[fingerprinting]
1617872	Consider making IsResistFingerprintingEnabled affect shared memory	P3	NEW		[fingerprinting][domsecurity-backlog1]
1450398	[meta] Resist Fingerprinting Mode should allow finer control of applicability	P3	NEW		[fingerprinting][fp-triaged][fpp:m?]
1450401	mozFullScreen leaks exact screen resolution	P3	NEW		[fingerprinting][fp-triaged]
1466148	WebRTC leaks internal addresses even when camera/mic permissions are not granted	P3	NEW		[fingerprinting][fp-triaged]
1470592	macOS 10.14 Camera/Mic Permissions granted in Private Browsing Mode shouldn't persist	P3	NEW		[tor][fingerprinting][fp-triaged]
1472808	For privacy.resistFingerprinting, spoof Keyboard Layout according to content locale	P3	NEW		[tor][fingerprinting][fp-triaged]
1475973	browser/components/resistfingerprinting/test/browser/browser_roundedWindow_open_* and browser/components/resistfingerprinting/test/browser/browser_roundedWindow_windowSetting_* fail on Windows install with 150% dpi	P3	NEW		[tor][fingerprinting][fp-triaged]
1485258	When privacy.spoof_english is true, don't reveal locale by charset fallback	P3	NEW		[tor 20025][fingerprinting][fp-triaged]
1490728	Improve discoverability/explanation of RFP	P3	NEW		[tor][fingerprinting][domsecurity-backlog1][fp-triaged]
1507517	[META] Breakage from Fingerprinting Resistance	P3	NEW		[fingerprinting][fp-triaged][domsecurity-backlog1]
1507879	Investigate getClientRects for fingerprinting	P3	NEW		[tor 29564][fingerprinting][fp-triaged]
1532859	Non-integer devicePixelRatio's cause blurriness with RFPTarget::WindowDevicePixelRatio	P3	NEW		[domsecurity-backlog1][tor][fingerprinting][fp-triaged][fpp:m?]
1538718	Account for Display Scaling when rendering	P3	NEW		[fingerprinting]
1542676	Round subpixel accuracy of window properties to integers when resistfingerprinting is enabled	P3	NEW		[tor 26607][fingerprinting]
1591337	RFP screen spoofs: step common spoofs based on inner window	P3	ASSIGNED	Pier Angelo Vendrame	[fingerprinting]
1314443	Audit the existing disable WebRTC preferences and ensure they work as advertised	P3	ASSIGNED	Tom Ritter [:tjr]	[tor][fingerprinting][tor-mobile][fp-triaged]
1579584	Have window.outerHeight/outerWidth lie and report the innerHeight/innerWidth	P3	NEW	Tom Ritter [:tjr]	[fingerprinting][fpp:future]
1449732	Do not expose Local IP Address in Resist Fingerprinting Mode	P5	REOPENED		[fingerprinting][fp-triaged]
1428033	Apply Resist Fingerprinting Protection to WebGL	P5	NEW		[fingerprinting][gfx-noted][fp-triaged]
1426232	Consider a Timezone Permission for Resist Fingerprinting	P5	NEW		[fingerprinting][fp-triaged]
1414162	Investigate and improve privacy.resistFingerprinting handling when toggled on mid-session	P5	NEW		[fingerprinting][fp-triaged]
1403747	When privacy.resistFingerprinting is true, warn users not to maximize their window	P5	NEW		[tor][fingerprinting][fp-triaged]
1928095	x86/x86_64 architecture are exposed through sign bit on NaN arithmetic	P5	NEW		[fingerprinting]
1362184	Add Telemetry for IndexedDB	P5	NEW		[fingerprinting][fp-triaged]
572650	[meta] Reduce the amount of data and entropy sent out in HTTP requests	P5	NEW		[fingerprinting][necko-would-take][fp-triaged]
1582687	Block user-installed fonts by default	--	NEW		[fingerprinting]
1719738	Simplify Timezone Names to Reduce Fingerprinting	--	NEW		[fingerprinting]
1916271	Gecko reveals sanitized GPU Characteristics; webkit and blink return hardcoded strings for all users	--	NEW		[client-bounty-form][fingerprinting]
959893	[meta] WebRTC Internal IP Address Leakage	--	NEW		[fingerprinting][fp-triaged]
503221	Locale can be determined using jar: protocol to test resource:///chrome/ entries	--	NEW		[fingerprinting]

64 Total; 64 Open (100%); 0 Resolved (0%); 0 Verified (0%);

@@ Line 1: / Line 1: @@
-=== Tor Related Bugs (whiteboard contains "[tor") ===
+== Bug Tracking ==
+Fingerprinting MVP bugs are tracked under the meta bug: <br>
+{{Bug|1329996}} - [META] Support anti-fingerprinting protection
+<br>
+'''Whiteboard Definition'''
+* [fingerprinting]: Fingerprinting bugs
+* [fp-breakage]: Breakage issues caused by fingerprinting resistance
+* [fp-triaged]: Already triaged
+* [fp-backlog]: Backlog bugs
+== Fingerprinting Bugs ==
+=== Open P1 Bugs (We are actively working on them) ===
 <bugzilla>
      {
          "status":["NEW", "ASSIGNED", "REOPENED"],
-         "whiteboard":["[tor"],
+        "priority":"P1",
-         "include_fields": "id, summary, status, priority, assigned_to, whiteboard",
+         "whiteboard":["fingerprint"],
+         "include_fields": "id, summary, priority, status, assigned_to, whiteboard",
          "order": "status, assigned_to"
      }
 </bugzilla>
-=== Fingerprinting Bugs (whiteboard contains "finger") ===
+=== Open P2 Bugs (Important. We will work on them ASAP) ===
 <bugzilla>
      {
          "status":["NEW", "ASSIGNED", "REOPENED"],
-         "whiteboard":["finger"],
+        "priority":"P2",
-         "include_fields": "id, summary, status, priority, assigned_to, whiteboard",
+         "whiteboard":["fingerprint"],
+         "include_fields": "id, summary, priority, status, assigned_to, whiteboard",
          "order": "status, assigned_to"
+    }
+</bugzilla>
+=== P3-P5 Bugs (Backlog) ===
+<bugzilla>
+    {
+        "status":["NEW", "ASSIGNED", "REOPENED"],
+        "priority":["--", "P3", "P4", "P5"],
+        "whiteboard":["fingerprint"],
+        "include_fields": "id, summary, priority, status, assigned_to, whiteboard",
+        "order": "priority, status, assigned_to"
      }
 </bugzilla>

Security/Fusion/Dashboard: Difference between revisions

Revision as of 11:04, 26 July 2018

Contents

Bug Tracking

Fingerprinting Bugs

Open P1 Bugs (We are actively working on them)

Open P2 Bugs (Important. We will work on them ASAP)

P3-P5 Bugs (Backlog)

Navigation menu

Security/Fusion/Dashboard: Difference between revisions

Revision as of 11:04, 26 July 2018

Bug Tracking

Fingerprinting Bugs

Open P1 Bugs (We are actively working on them)

Open P2 Bugs (Important. We will work on them ASAP)

P3-P5 Bugs (Backlog)

Navigation menu

Search